Lucene search

CVE-2024-41812 txtdot SSRF vulnerability in /get

🗓️ 26 Jul 2024 16:52:49Reported by GitHub_MType

CVE-2024-41812 txtdot SSRF vulnerability in /get route allows remote attackers to use server as proxy for HTTP request

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Vulnrichment	CVE-2024-41812 txtdot SSRF vulnerability in /get	26 Jul 202416:49	–	vulnrichment
OSV	CVE-2024-41812	26 Jul 202417:15	–	osv
NVD	CVE-2024-41812	26 Jul 202417:15	–	nvd
CVE	CVE-2024-41812	26 Jul 202417:15	–	cve

[
  {
    "vendor": "TxtDot",
    "product": "txtdot",
    "versions": [
      {
        "version": "< 1.7.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/TxtDot/txtdot/blob/a7fdaf80fdf45abefe83b2eb5135ba112142dc74/src/handlers/distributor.ts
github	www.github.com/TxtDot/txtdot/security/advisories/GHSA-4gj5-xj97-j8fp
github	www.github.com/TxtDot/txtdot/commit/7c72d985f7a26ec1fd3cf628444717ca54986d2d

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Jul 2024 16:49Current

CVSS37.5

EPSS0.00205

CWE-918